Posts

Leeloo Multipath Authorization Bypass / Symlink Attack

Simple Cold Storage Management System 1.0 SQL Injection

Train Scheduler App 1.0 Insecure Direct Object Reference

wolfSSL Buffer Overflow

Ecommerce CodeIgniter Bootstrap 1.0 Cross Site Scripting

Siemens APOGEE PXC / TALON TC Authentication Bypass

Vagrant Synced Folder Vagrantfile Breakout

Dinstar FXO Analog VoIP Gateway DAG2000-16O Cross Site Scripting

ERP Sankhya 4.13.x Cross Site Scripting

GLPI 10.0.2 Command Injection

ZKTeco ZEM500-510-560-760 / ZEM600-800 / ZEM720 / ZMM Missing Authentication

Backdoor.Win32.Psychward.10 MVID-2022-0651 Remote Command Execution

MutableSecurity 0.4.0

Email-Worm.Win32.Kipis.c MVID-2022-0652 File Write / Code Execution

Pega Platform 8.7.3 Remote Code Execution

Backdoor.Win32.Delf.arh MVID-2022-0650 Authentication Bypass

Zimbra Collaboration Suite TAR Path Traversal

Chrome AccountSelectionBubbleView::OnAccountImageFetched Heap Use-After-Free

Cisco Jabber XMPP Stanza Smuggling

Chrome offline_items_collection::OfflineContentAggregator::OnItemRemoved Heap Buffer Overflow

Fortinet FortiOS / FortiProxy / FortiSwitchManager Authentication Bypass

Zimbra Privilege Escalation

AVS Audio Converter 10.3 Stack Overflow

MiniDVBLinux 5.4 Arbitrary File Read

WordPress Photo Gallery 1.8.0 Cross Site Scripting

MiniDVBLinux 5.4 Remote Root Command Execution

WiFi File Transfer 1.0.8 Cross Site Scripting

Backdoor.Win32.Redkod.d MVID-2022-0649 Hardcoded Credential

MiniDVBLinux 5.4 Remote Root Command Injection

pfSense pfBlockerNG 2.1.4_26 Shell Upload

Spring Cloud Gateway 3.1.0 Remote Code Execution

Webile 1.0.1 Directory Traversal

MiniDVBLinux 5.4 Unauthenticated Stream Disclosure

Backdoor.Win32.DarkSky.23 MVID-2022-0648 Buffer Overflow

MiniDVBLinux 5.4 Change Root Password

MiniDVBLinux 5.4 SVDRP Control

MiniDVBLinux 5.4 Configuration Download

Joomla Vik Appointments 1.7.3 Cross Site Scripting

MapTool 1.11.5 Cross Site Scripting

MapTool 1.11.5 Denial Of Service

Windows Kernel Registry Subkey Lists Integer Overflow

WordPress ImageMagick-Engine 1.7.4 Remote Code Execution

Stripe Green Downloads 2.03 Cross Site Scripting

Garage Management System 1.0 Cross Site Scripting

SAP Manufacturing Execution Core 15.3 Path Traversal

Vicidial 2.14-783a Cross Site Scripting

Knap Advanced PHP Login 3.1.3 Cross Site Scripting

Joomla OSG Courts Reservation 1.4.9 SQL Injection

Intelbras WiFiber 120AC inMesh 1.1-220216 Command Injection

cryptmount Filesystem Manager 6.1.0